Reproducible hardened Linux images for confidential computing and safe MEV
This repository provides a toolkit for building minimal, hardened Linux images designed for confidential computing environments and MEV (Maximum Extractable Value) applications. Built on mkosi and Nix, it provides reproducible, security-focused Linux distributions with strong network isolation, attestation capabilities, and blockchain infrastructure support.
It contains our bottom-of-block searcher sandbox infrastructure and will soon contain our BuilderNet infrastructure as well, along with any future TDX projects we implement.
For more information about this repository, see the Flashbots collective post.
- Reproducible Builds: Deterministic image generation using Nix and frozen Debian snapshots
- Confidential Computing: Built-in support for Intel TDX and remote attestation
- Minimal Attack Surface: Uses very few packages (20Mb base)
- Flexible Deployment: Support for Bare Metal TDX, QEMU, Azure, and GCP
In order to build images, you'll need to install Lima for your operating system. Building images without Lima is possible, but due to inconsistencies between distributions, it is not supported for generating official reproducible images.
# Build the BOB (searcher sandbox) image
make build IMAGE=bob
# Build the Buildernet image
make build IMAGE=buildernet
# Build the l2 builder image
make build IMAGE=l2-builder
# Build with development tools
make build-dev IMAGE=bob
# View all available targets
make helpExport TDX measurements for the built image:
make measureThis generates measurement files in the build/ directory for attestation and verification.
Create persistent storage (for stateful applications):
qemu-img create -f qcow2 persistent.qcow2 2048GRun QEMU:
sudo qemu-system-x86_64 \
  -enable-kvm \
  -machine type=q35,smm=on \
  -m 16384M \
  -nographic \
  -drive if=pflash,format=raw,readonly=on,file=/usr/share/edk2/x64/OVMF_CODE.secboot.4m.fd \
  -drive file=/usr/share/edk2/x64/OVMF_VARS.4m.fd,if=pflash,format=raw \
  -kernel build/tdx-debian.efi \
  -netdev user,id=net0,hostfwd=tcp::2222-:22,hostfwd=tcp::8080-:8080 \
  -device virtio-net-pci,netdev=net0 \
  -device virtio-scsi-pci,id=scsi0 \
  -drive file=persistent.qcow2,format=qcow2,if=none,id=disk0 \
  -device scsi-hd,drive=disk0,bus=scsi0.0,channel=0,scsi-id=0,lun=10With TDX confidential computing (requires TDX-enabled hardware/hypervisor):
sudo qemu-system-x86_64 \
  -accel kvm \
  -machine type=q35,kernel_irqchip=split,confidential-guest-support=tdx0 \
  -object tdx-guest,id=tdx0 \
  -cpu host,-kvm-steal-time,-kvmclock \
  -m 16384M \
  -nographic \
  -kernel build/tdx-debian.efi \
  # ... rest of options same as aboveNote
Depending on your Linux distro, these commands may require changing the supplied OVMF paths or installing your distro's OVMF package.
Note
Running systemctl status generates a report with an unmerged-bin taint. That's
expected.
See bug report #1085370 for details.
- 
Install Nix (single user mode is sufficient): sh <(curl -L https://nixos.org/nix/install) --no-daemon
- 
Enable Nix experimental features in ~/.config/nix/nix.conf:experimental-features = nix-command flakes
- 
Install Debian archive keyring (temporary requirement): # On Ubuntu/Debian sudo apt install debian-archive-keyring # On other systems, download via package manager or use Docker approach below 
# Enter the development environment
nix develop -c $SHELL
# Build a specific image
mkosi --force -I bob.conf
mkosi --force -I buildernet.conf
# Build with profiles
mkosi --force -I bob.conf --profile=devtools
mkosi --force -I bob.conf --profile=azure
mkosi --force -I bob.conf --profile=azure,devtools- 
If you encounter mkosi was forbidden to unshare namespaces, try adding an apparmor profile like so:sudo cat <<EOF > /etc/apparmor.d/mkosi abi <abi/4.0>, include <tunables/global> /nix/store/*-mkosi-*/bin/mkosi flags=(default_allow) { userns, } EOF sudo systemctl reload apparmor 
- 
If you encounter unshare: setgroups failed: Operation not permitted, try to disable apparmor's restriction:sudo sysctl kernel.apparmor_restrict_unprivileged_userns=0 sudo -c 'echo "kernel.apparmor_restrict_unprivileged_userns=0" >> /etc/sysctl.conf'
- 
If you encounter bootctl: unrecognized option '--root=/buildroot', you'll need to upgrade to a newer version of systemd (at least v250), which is only supported by recent versions of Ubuntu.
- Development Guide - Comprehensive guide for creating new modules and extending existing ones
- BOB Module Guide - Detailed documentation for the MEV searcher environment